$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/0feedd18-2b71-48d5-a2ee-07ca90b4d203.roa File: 0feedd18-2b71-48d5-a2ee-07ca90b4d203.roa (raw, json) Hash identifier: JFPH8H5i+DmbaoJwELy/bCmMSN1GdFgQ4tG7k8fAe9M= Subject key identifier: 3F:F4:DA:0D:74:06:D0:C4:FE:3D:DC:22:22:AE:6E:B7:89:19:51:CD Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 5CD627E95B34E4919C9A6395AEF3BFC57EEF707D Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/0feedd18-2b71-48d5-a2ee-07ca90b4d203.roa Signing time: Sat 18 Oct 2025 00:00:20 +0000 ROA not before: Sat 18 Oct 2025 00:00:20 +0000 ROA not after: Sat 22 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 240f:8014:800::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 00:01:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:d6:27:e9:5b:34:e4:91:9c:9a:63:95:ae:f3:bf:c5:7e:ef:70:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Oct 18 00:00:20 2025 GMT Not After : Nov 22 23:59:59 2025 GMT Subject: serialNumber=015d8006690540e96a41b8e05eaf7122be802bfbddd01163d336b49a4d5822e7, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:c0:0b:0c:87:da:6a:ca:50:14:31:5c:fa:a1: 71:fc:a1:95:a7:0d:84:70:13:e8:39:14:6e:04:c5: 8c:be:20:bd:59:8a:34:b8:49:27:51:05:f6:44:40: ca:c3:6b:3b:81:f3:4d:8d:4e:a1:51:5b:62:6b:1c: 3b:96:67:28:a0:23:57:15:15:0d:b0:8f:fd:d4:26: e3:69:35:40:6d:fc:2f:b4:9b:27:e6:23:3f:4c:ba: 20:f1:85:4b:2b:ef:9b:dc:a5:44:7d:1f:36:16:c5: 9f:57:f0:7c:c0:af:da:34:8c:bc:0d:b5:8e:f2:53: 75:df:4a:cd:e1:b0:cd:5c:64:cd:55:4a:06:fd:a7: 81:3e:f6:4e:62:6f:8e:29:97:28:27:c4:43:82:18: 80:19:6f:b6:38:dd:22:9b:ca:66:ae:53:7a:a4:be: 6e:3b:f5:f0:36:f3:d7:a9:35:66:ff:6e:f0:d5:6e: e5:34:ae:92:c9:18:27:d7:56:4b:5c:03:f7:58:93: 6a:4d:64:76:2c:12:39:a9:36:d9:7a:94:26:61:05: c0:ad:e2:1c:10:d2:ac:85:77:49:26:f8:6c:a2:a1: cc:17:27:17:9f:f2:0d:7a:68:3d:1f:90:de:cb:f2: 3f:52:43:e5:74:e7:2b:e8:4d:aa:2f:44:f0:0f:c8: 24:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:F4:DA:0D:74:06:D0:C4:FE:3D:DC:22:22:AE:6E:B7:89:19:51:CD X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/0feedd18-2b71-48d5-a2ee-07ca90b4d203.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:8014:800::/38 Signature Algorithm: sha256WithRSAEncryption 7e:b7:3a:1a:f6:76:e2:9d:3c:15:22:38:ca:48:50:20:da:1f: 9c:7e:87:cd:3f:9c:8d:8d:8f:17:56:67:8e:ba:c6:da:41:79: 59:27:c7:10:50:20:eb:48:bb:2b:da:08:38:28:ff:c4:5e:6d: 31:f0:22:29:a9:3f:48:e9:f2:4e:74:34:d9:3d:48:b3:22:92: 50:e3:2d:0e:35:0b:d4:c7:69:7b:24:5b:67:f3:61:1f:16:20: bd:df:16:4a:32:aa:e9:e3:08:81:c8:a9:45:04:09:47:45:47: 4b:4e:83:e3:61:8d:f0:ea:9d:0a:6d:d7:c9:f2:ed:85:3c:18: 37:47:bd:4b:e0:14:23:11:4c:01:7b:b9:c9:7f:c5:85:26:b7: eb:17:19:0f:0f:4f:77:c0:ff:1b:50:77:21:53:fa:3b:d4:c1: f9:e3:23:19:74:c6:53:6d:af:5d:7a:76:0a:47:5d:49:a2:09: d6:df:ea:27:fe:af:d1:30:7c:c5:5d:c8:ab:8f:4e:7b:3f:a9: 68:e8:6b:d6:ac:89:2c:dc:a4:f1:2b:55:37:95:8d:2a:7b:a0: 0a:f1:a8:df:24:cc:18:b0:23:7e:c2:02:20:a9:6a:00:2e:9a: 7b:62:c7:79:0e:22:31:73:b1:38:26:ea:48:08:79:a5:c9:00: 5c:d2:47:f2 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUXNYn6Vs05JGcmmOVrvO/xX7vcH0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MTAxODAwMDAyMFoX DTI1MTEyMjIzNTk1OVowejFJMEcGA1UEBRNAMDE1ZDgwMDY2OTA1NDBlOTZhNDFi OGUwNWVhZjcxMjJiZTgwMmJmYmRkZDAxMTYzZDMzNmI0OWE0ZDU4MjJlNzEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+cALDIfaaspQFDFc+qFx/KGVpw2E cBPoORRuBMWMviC9WYo0uEknUQX2REDKw2s7gfNNjU6hUVtiaxw7lmcooCNXFRUN sI/91CbjaTVAbfwvtJsn5iM/TLog8YVLK++b3KVEfR82FsWfV/B8wK/aNIy8DbWO 8lN130rN4bDNXGTNVUoG/aeBPvZOYm+OKZcoJ8RDghiAGW+2ON0im8pmrlN6pL5u O/XwNvPXqTVm/27w1W7lNK6SyRgn11ZLXAP3WJNqTWR2LBI5qTbZepQmYQXAreIc ENKshXdJJvhsoqHMFycXn/INemg9H5Dey/I/UkPldOcr6E2qL0TwD8gkFQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFD/02g10BtDE/j3cIiKubreJGVHNMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 LzBmZWVkZDE4LTJiNzEtNDhkNS1hMmVlLTA3Y2E5MGI0ZDIwMy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYCJA+AFAgwDQYJKoZIhvcNAQELBQADggEBAH63Ohr2duKdPBUiOMpI UCDaH5x+h80/nI2NjxdWZ466xtpBeVknxxBQIOtIuyvaCDgo/8RebTHwIimpP0jp 8k50NNk9SLMiklDjLQ41C9THaXskW2fzYR8WIL3fFkoyqunjCIHIqUUECUdFR0tO g+NhjfDqnQpt18ny7YU8GDdHvUvgFCMRTAF7ucl/xYUmt+sXGQ8PT3fA/xtQdyFT +jvUwfnjIxl0xlNtr116dgpHXUmiCdbf6if+r9EwfMVdyKuPTns/qWjoa9asiSzc pPErVTeVjSp7oArxqN8kzBiwI37CAiCpagAumntix3kOIjFzsTgm6kgIeaXJAFzS R/I= -----END CERTIFICATE-----Generated at Mon Oct 20 12:52:05 2025 by rpki-client